538 matches found
PT-2025-52140
Deserialization of Untrusted Data vulnerability in add-ons.org PDF for WPForms pdf-for-wpforms allows Object Injection.This issue affects PDF for WPForms: from n/a through = 6.3.1...
Deserialization of Untrusted Data
Overview next is a react framework. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to unsafe deserialization of payloads from HTTP requests to Server Function endpoints. An attacker can cause the server process to enter an infinite loop and hang,...
Deserialization of Untrusted Data
Overview @modern-js/utils is a progressive web framework based on React. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to unsafe deserialization of payloads from HTTP requests to Server Function endpoints. An attacker can cause the server process to ent...
EUVD-2025-38012
Deserialization of Untrusted Data vulnerability in Fetch Designs Sign-up Sheets sign-up-sheets allows Object Injection.This issue affects Sign-up Sheets: from n/a through = 2.3.2...
CVE-2025-49386
CVE-2025-49386 : A deserialization-based PHP Object Injection vulnerability affects the WordPress plugin Preserve Code Formatting up to version 4.0.1. The issue arises from deserializing untrusted data, enabling object injection. The CVE entries consistently describe this as a vulnerability in th...
CVE-2025-50739
iib0011 omni-tools v0.4.0 is vulnerable to remote code execution via unsafe JSON deserialization...
EUVD-2025-35398
Deserialization of Untrusted Data vulnerability in universam UNIVERSAM universam-demo allows Object Injection.This issue affects UNIVERSAM: from n/a through = 8.72.34...
CVE-2025-60226
CVE-2025-60226 describes a deserialization of untrusted data vulnerability in the WordPress WordPress White Rabbit theme (up to version 1.5.2). The underlying issue is PHP Object Injection via deserializing untrusted data, as indicated by multiple connected sources. Affected software/component: W...
CVE-2025-60221
CVE-2025-60221 concerns the WordPress Captivate Sync Plugin (
CVE-2025-52737 WordPress WP Store Locator plugin <= 2.2.260 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Tijmen Smit WP Store Locator wp-store-locator allows Object Injection.This issue affects WP Store Locator: from n/a through = 2.2.260...
CVE-2025-52737 WordPress WP Store Locator plugin <= 2.2.260 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Tijmen Smit WP Store Locator wp-store-locator allows Object Injection.This issue affects WP Store Locator: from n/a through = 2.2.260...
CVE-2025-31634
CVE-2025-31634 describes a PHP Object Injection flaw in the WordPress theme “Insurance” (versions ≤ 3.5) due to deserializing untrusted data. Public sources (Patchstack/Red Hat/ENISA) confirm this is currently unpatched, affecting the Insurance theme up to 3.5; remediation is to upgrade to a vers...
CVE-2025-32283 WordPress Solar Energy theme <= 3.5 - PHP Object Injection Vulnerability
Deserialization of Untrusted Data vulnerability in designthemes Solar Energy solar allows Object Injection.This issue affects Solar Energy: from n/a through = 3.5...
WordPress plugin JobSearch 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...
WordPress plugin WooCommerce Vehicle Parts Finder 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
PT-2025-43149
Name of the Vulnerable Software and Affected Versions designthemes Insurance versions through 3.5 Description The software contains a flaw due to deserialization of untrusted data, which can lead to object injection. This impacts the Insurance application. Recommendations Update to a version newe...
EUVD-2021-20467
Malware in sbrugna...
EUVD-2018-10175
Malware in sbrugna...
EUVD-2020-0502
Malware in sbrugna...
EUVD-2019-0394
Malware in sbrugna...